search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-04-11 2002-03-21 2002-05-28 VU#124003 Apache HTTP Server on Win32 systems does not securely handle input passed to CGI programs
2007-09-04 2007-09-04 2007-10-26 VU#377544 MIT Kerberos 5 kadmind privilege escalation vulnerability
2002-09-24 2001-12-25 2002-09-24 VU#282403 AdCycle does not adequately validate user input thereby allowing for SQL injection
2007-12-19 2007-12-19 2008-01-15 VU#758769 Adobe Flash Player asfunction protocol may enable cross-site scripting
2006-02-14 2006-02-14 2006-03-17 VU#291396 Microsoft Windows Media Player vulnerable to buffer overflow in bitmap processing routine
2001-07-17 2001-07-16 2002-12-12 VU#276944 iPlanet Directory Server contains multiple vulnerabilities in LDAP handling code
2001-05-17 2000-08-31 2001-06-21 VU#686403 ld.so fails to unset LD_PRELOAD before executing suid root programs
2001-10-18 2001-07-25 2001-10-22 VU#847803 Php variables passed from the browser are stored in global context
2002-07-30 2002-07-30 2002-09-30 VU#561275 OpenSSL servers contain a remotely exploitable buffer overflow vulnerability during the SSL3 handshake process
2006-02-09 2006-02-07 2006-05-03 VU#759996 Sun Java Reflection API security bypass vulnerabilities
2005-07-06 2005-04-16 2005-07-06 VU#998369 Apple Web Kit-based browsers may allow remote access to local filesystem contents
2003-03-20 2003-03-15 2003-05-09 VU#442569 MIT Kerberos vulnerable to ticket splicing when using Kerberos4 triple DES service tickets
2006-06-02 2006-06-01 2007-02-09 VU#575969 Mozilla may process content-defined setters on object prototypes with elevated privileges
2002-06-12 2002-06-04 2002-06-12 VU#440275 Microsoft Internet Explorer contains buffer overflow in handling of gopher replies
2008-04-30 2008-04-17 2008-07-30 VU#584089 cPanel XSRF vulnerabilities

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis